Working to help protect customers from vulnerabilities in Adobe software. Contact us at PSIRT(at)adobe(dot)com.

Security Bulletins for Adobe Acrobat and Reader (APSB15-15), Adobe Shockwave Player (APSB15-17) and Adobe Flash Player (APSB15-18) have been published. These updates address critical vulnerabilities, and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the relevant security bulletin.

Adobe is aware of reports that exploits targeting vulnerabilities affecting Flash Player have been published publicly.

UPDATE (July 16): Updated APSB15-18 to include versions of Flash Player for Linux as well as the Extended Support Release that address the vulnerabilities referenced in APSB15-18.

This posting is provided “AS IS” with no warranties and confers no rights.

A Security Advisory (APSA15-04) has been published regarding critical vulnerabilities (CVE-2015-5122, CVE-2015-5123) in Adobe Flash Player 18.0.0.204 and earlier versions for Windows, Macintosh and Linux.

Adobe is aware of reports that exploits targeting these vulnerabilities have been published publicly. Adobe expects to make updates for Adobe Flash Player available during the week of July 13, 2015.

A security bulletin (APSB15-16) has been published regarding security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit targeting one of the vulnerabilities, CVE-2015-5119, has been publicly published. Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.

A Security Bulletin (APSB15-14) has been published regarding security updates for Adobe Flash Player. These updates address a critical vulnerability (CVE-2015-3113), and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

Adobe is aware of reports that CVE-2015-3113 is being actively exploited in the wild via limited, targeted attacks. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP, are known targets.

This posting is provided “AS IS” with no warranties and confers no rights.

A Security Bulletin (APSB15-11) has been published regarding security updates for Adobe Flash Player. These updates address critical vulnerabilities, and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the security bulletin.

This posting is provided “AS IS” with no warranties and confers no rights.